NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Open VPN cert issues with RAX15
Hoping someone has an idea on how to recreate or replace the SSL cert in a Netgear router. I am a Mac user using VPN Tracker, which is arguably the best VPN client on the Mac OS side. I have at least...
I had a similar question a year ago for the RAX35 and RAX40 routers. I never got a answer.
I tried different ways to force the creation of a new server (router) certificate and related client certificate but was never successful. It appeared the certificate is fixed on the router.
This means if a device is stolen or the client certificate gets in the wrong hands then you might as well disable the Netgear's built-in OpenVPN as you cannot revoke/invalidate the client certificate and you cannot generate a new pair of server/client certificates. Obviously Netgear has no business utilizing such a flawed implementaion of OpenVPN since this is not a secure implentation.
If you get a response that explains how to do this please let me know. Thanks.
Thanks for the info, I hadn't even considered the security ramifications of this, only the annoyance factor. So far Netgear support has instructed me to change the port numbers for TUN and TAP on the router and then generate a new set of credentials, but that has nothing to do with the cert so I am not sure they even understood the question. The tech did ask for my phone no. and if he calls I wlll update this thread. Attached is what the Mac OS Keychain app shows when the Netgear certs are auto-added to it by my VPN client.
